WikiPatents - Community Patent Review
Create Free Account  |  License or Sell Your Patent  |  WikiPatents Marketplace  |  WikiPatents Blog
Username:  Password:  
    
Advanced Search
Access control system with mechanical keys which store data    

Get related patents on CD
United States Patent5245329   
Link to this pagehttp://www.wikipatents.com/5245329.html
Inventor(s)Gokcebay; Asil T. (San Francisco, CA)
AbstractAn access control system combines card type keys or mechanical keys and lock cylinders with keyholder authentication, so that only the authorized keyholder or keyholders can use a key at an access control point. The access control point can be a door, gate, drawer, safe, safety deposit box, computer terminal or other situation wherein high security is desirable. In a preferred embodiment, the access control system includes a series of mechanical keys (or card type keys) having encoded data stored on the bottom edges of the keys. The encoded data may be in the form of a bar code or optical data storage, either directly formed onto the key or on a strip of plastic or other material bearing the encoded data, secured to the key. In one form of the invention, user authentication involves a biometric feature such as a fingerprint of the intended keyholder. The fingerprint is digitized, encoded and placed on the bottom edge of the mechanical key for that intended keyholder, preferably along with an encoded keyholder identifying number. An authentication reader at a high security access control point includes a keyway with a reader for the encoded data representing the encoded fingerprint, and also a fingerprint reader for reading the user's fingerprint at each instance of attempted entry. Comparison of the attempted user's fingerprint with the stored fingerprint is preferably made directly at the access control point, so that only the access decision and a keyholder identifying code (also in the encoded data) need to be sent to a central processor. A decision to grant access effects the release of an electric release or electric strike. The purpose of the mechanical keys or card type keys is to enable the keyholder to also gain access to lower security access points in the system without having to carry more than one key or access item. If desired, a write feature can be included in the system, whereby each access control point accessed (or attempted to be accessed) by a keyholder will be recorded on the key, providing for later reading of the key to determine where use has been attempted.
   














 Title Information Submit all comments and votes
 
Patent Text Patent PDF Print Page Summary File History
Plain text PDF images Print Summary File History Custom Search
Drawing from US Patent 5245329
Access control system with mechanical keys which store data - US Patent 5245329 Drawing
Access control system with mechanical keys which store data
Inventor     Gokcebay; Asil T. (San Francisco, CA)
Owner/Assignee     Security People Inc. (San Francisco, CA)
Patent assignment
All assignments
Company News
Publication Date     September 14, 1993
Application Number     07/343,663
PAIR File History     Application Data   Transaction History
Image File Wrapper   Patent Term   Fees
Litigation
Filing Date     April 27, 1989
US Classification     340/5.33 70/409 235/382.5 340/5.83 382/124
Int'l Classification     G06K 009/78 G06K 009/62
Examiner     Yusko; Donald J.
Assistant Examiner     Giust; J.
Attorney/Law Firm     Freiburger; Thomas M.
Address
Parent Case     This application is a continuation-in-part of parent application Ser. No. 07/315,547, filed Feb. 27, 1989, now abandoned.
Priority Data    
USPTO Field of Search     70/277 70/278 70/409 340/825.3 340/825.31 340/825.34 340/825.69 340/825.72 361/172 382/1 382/2 382/3 382/4 382/5 235/380 235/382 235/382.5
Patent Tags     access control mechanical keys which store data
   
Enter a comma (,) or semicolon (;) between multiple tag words/phrases.
Describe this patent:
 Amusing   
 Clever   
 Complex   
 Efficient   
 Historic   
 Important   
 Innovative   
 Interesting   
 Practical   
 Simple   
[no votes]
Patent WIKI

Share information and news about this patent, including information and news about the technology, inventors, company, ligation and licensing.
 References Submit all comments and votes
 
*references marked with an asterisk below are user-added references
 U.S. References
 
Add a new US reference:  
ReferenceRelevancyCommentsReferenceRelevancyComments
3654522



[0 after 0 votes]		4835407
Kataoka
307/10.5
May,1989
[0 after 0 votes]
4831374
Masel
340/5.33
May,1989
[0 after 0 votes]		4789859
Clarkson
340/5.65
Dec,1988
[0 after 0 votes]
4734693
Dluhosch
340/5.23
Mar,1988
[0 after 0 votes]		4723427
Oliver
70/494
Feb,1988
[0 after 0 votes]
4712103
Gotanda
340/5.53
Dec,1987
[0 after 0 votes]		4633687
Fane
70/276
Jan,1987
[0 after 0 votes]
4582985
Lofberg
235/380
Apr,1986
[0 after 0 votes]		4542465
Stockburger
700/117
Sep,1985
[0 after 0 votes]
4538056
Young
235/377
Aug,1985
[0 after 0 votes]		4532508
Ruell
340/5.83
Jul,1985
[0 after 0 votes]
4326124
Faude
235/382
Apr,1982
[0 after 0 votes]		4144523
Kaplit
340/5.25
Mar,1979
[0 after 0 votes]
4760393
Mauch
340/5.54
Dec,1969
[0 after 0 votes]
 Foreign References
 Other References
 Market Review Submit all comments and votes
   
Market Size
Estimate the gross annual revenues of the relevant market sector:
> $10B
$5B - $10B
$2B - $5B
$500M - $2B
$100M - $500M
$10M - $100M
$1M - $10M
$500K - $1M
$100K - $500K
< $100K
[No votes]
$0
 
$0   $2.5B   $5B   $7.5B   $10B

[0 market size comments]
Market Share
Estimate the percentage of the relevant market sector this invention will capture:
75% - 100%
50% - 74.99%
25% - 49.99%
10 - 24.99%
5 - 9.99%
2 - 4.99%
1 - 1.99%
< 1%
[No votes]
0.0%
 
0%   25%   50%   75%   100%

[0 market share comments]
Reasonable Royalty
What percentage of gross sales should the inventor or assignee be paid?
75% - 100%
50% - 74.99%
25% - 49.99%
10 - 24.99%
5 - 9.99%
2 - 4.99%
1 - 1.99%
< 1%
[No votes]
0.0%
 
0%   25%   50%   75%   100%

[0 reasonable royalty comments]
Public's "Guesstimation" of Royalty Value
Market SizeN/A[No votes]
xMarket ShareN/A[No votes]
xReasonable RoyaltyN/A[No votes]
N/A

[0 Guesstimation of Royalty Value Comments]
License Availablity
If you are NOT the owner or assignee, answer here:
Yes, license is available for purchase

No, license is not currently available



 [No votes]
[0 license availability comments]
License Availablity
If you ARE the owner or assignee, answer here:
Yes, license is available for purchase

No, license is not currently available



 [No votes]
[0 owner/assignee comments]
Competitive Advantage
Does this invention have a significant competitive advantage over similar technologies?
Yes

No



 [No votes]
Most helpful competitive advantage comment
[No comments]

[0 competitive advantage comments]
Commercial Alternatives
Are there viable commercial alternatives for this invention?
Yes

No



 [No votes]
Most helpful commercial alternative comment
[No comments]

[0 commercial alternatives comments]
 Technical Review Submit all comments and votes
 Claims Submit all comments and votes
 


I claim:

1. An access control system using mechanical keys and keyholder authentication, comprising,

a series of lockable access control points with mechanical locks,

a series of mechanical keys with mechanical configurations providing lock access features,

each mechanical key having encoded data physically located on the key,

at least one access control point having an electrically operated release or strike for granting access without turning of the key,

a user verifying reader adjacent to said one access control point, including user authentication reader means for reading the encoded data on the key when the key is placed at the reader means, and for comparing the read data with a personal identifying feature of the keyholder using the key, and, if the encoded data matches the personal identifying feature, for enabling access to the keyholder via the electrically operated release or strike.

2. The apparatus of claim 1, wherein the personal identifying feature comprises the keyholder's fingerprint.

3. The apparatus of claim 1, wherein the personal identifying feature of the keyholder includes characteristics of the retina of the keyholder's eye, and wherein the reader means includes means for scanning and reading the characteristics of the retina.

4. The apparatus of claim 1, wherein the encoded data is positioned on the key's bottom edge.

5. The apparatus of claim 4, wherein the key's bottom edge has a longitudinal groove within which the encoded data is positioned, in an elongated strip.

6. The apparatus of claim 1, wherein the encoded data is in the form of optical data storage.

7. The apparatus of claim 1, wherein the encoded data is in the form of a bar code.

8. The apparatus of claim 1, wherein the mechanical key has a cut configuration including angled cuts with cut facets which are oblique rather than perpendicular with respect to the side faces of the key, and including in the reader means a keyway shaped to receive the mechanical key for reading the encoded data, and angled pin means cooperative with the keyway for orienting a bottom surface of a pin against the angled facet and for preventing access if the pin does not mate complementarily with the angled facet.

9. The apparatus of claim 1, wherein the encoded data on the key includes digitized information representing the intended keyholder's fingerprint, and wherein the user authentication reader means includes fingerprint reader means for comparing the read actual keyholder's fingerprint with the fingerprint as stored in the encoded data.

10. The apparatus of claim 1, wherein the user authentication reader means includes a keyway configured to receive the key, and an optical data reader means adjacent to the keyway, with light beam generator and detection means for directing a stationary light beam toward the data encoded on the key, such that the movement of the key in entering the keyway effects a scan of the encoded data positioned on the key.

11. The apparatus of claim 1, wherein the user authentication reader means is located directly at the access control point, and includes means for comparing the read data with the personal identifying feature directly at the access control point, rather than at a central processor.

12. The apparatus of claim 1, wherein the user authentication reader means includes a local processor, and wherein the system includes central processor means for receiving reports from the local processor.

13. The apparatus of claim 12, wherein a two-conductor wire connects the local processor at the access control point to the central processor.

14. The apparatus of claim 12, wherein the encoded data on the key includes a key or keyholder identifying code and wherein the local processor includes means for generating transaction records or reports including a "yes" or "no" regarding the decision of the user verifying reader as to whether or not access was enabled, and including means for sending the key or keyholder identifying code to the central processor means to be correlated with the "yes" or "no" decision report and a date and time of occurrence.

15. The apparatus of claim 17, wherein the encoded data on the key includes a key or keyholder identifying code and including means for sending the key or keyholder identifying code to the central processor means, and further including date/time control means associated with the central processor, with an associated database, for looking up the keyholder identifying code in the database and determining whether the keyholder is to be permitted access at the particular time of attempted access, and for sending a "yes" or "no" date/time control decision from the central processor to the local processor so as to prevent access even to an authenticated keyholder if the date and time are not appropriate for access.

16. The apparatus of claim 1, wherein the system includes further access control points without said electrically operated release or strike and without said user verifying reader, with locks which are operable without user verification by at least one mechanical key which is also effective at said one access control point for user authentication, whereby a keyholder can gain access to a series of locks in the system by carrying only one key.

17. The apparatus of claim 1, wherein said one access control point comprises an employee entry to and exit from a work area, and wherein the system includes a user verifying reader positioned to be used by an employee on exiting, as well as on entering, and including employee time management means for receiving information from the user verifying reader on an employee's entry as well as exit, and for automatically computing the employee's time at work for payroll purposes, based on said received information. and a reproduction of the keyholder's photographic image is generated for comparison with the keyholder's appearance.

18. A method for controlling access at an access control point, comprising,

providing a series of mechanical keys for various personnel who will be using the access control point,

obtaining from each intended keyholder a personal identifying feature, digitizing the feature and placing it in encoded form physically on the key,

providing at the access control point a reader for the encoded data on the mechanical key, and a means for inputting the personal identifying feature of an intended keyholder, as well as local processor means for comparing the read actual personal identifying feature with the digitized personal identifying feature as read from the key, and for enabling access at the access control point only if the encoded data substantially matches the personal identifying feature as actually read.

19. The method of claim 18, wherein the personal identifying feature is the intended keyholder's fingerprint.

20. The method of claim 18, wherein the key reader includes a keyway slot configured to receive a particular keyway configuration, with the key reader being adjacent to the keyway slot.

21. The method of claim 18, wherein the access control point comprises a door including an electric release or strike, and wherein a positive comparison by the processor means is necessary for activation of the electric release or strike so that the door can be opened.

22. The method of claim 18, further including encoding on each key a keyholder code or number for the particular intended keyholder, and including reading the keyholder code or number with the key reader, sending the keyholder number to a central processor in the system, looking up the authorized dates/times of permitted access for that keyholder number with the central processor and a data base, and sending a signal back to the local processor means to enable access only if the date and time are proper, as well as said substantial match occurring.

23. The method of claim 18, including providing in the system a series of secondary access control points wherein the mechanical key alone is effective to gain access, without use of the encoded data on the key, whereby a person need only carry one key for access to a series of different access control points with higher levels of security and lower levels of security.

24. The method of claim 18, wherein the personal identifying feature comprises a personal code number known to the intended keyholder, and including providing a keyboard for inputting of the personal code number by the keyholder, for comparison with a personal code number encoded on the mechanical key.
 Description Submit all comments and votes
 


BACKGROUND OF THE INVENTION

This invention relates to access control, and more particularly it is concerned with a high security access control system involving credit card type keys or mechanical keys and locks as well as keyholder authentication to prevent unauthorized use of a key.

A number of different types of access control systems and devices have existed in use or in previous patents--for example, the systems of National Computer Systems, Inc. and Continental Instruments, Inc.

Cylinders and keys having mechanical configuration in combination with electrical, magnetic or optical locking or

unlocking devices have also been known. See, for example, U.S. Pat. Nos. 4,603,564, 4,658,105, 4,633,687, 4,458,512, and 3,733,862. In some of these devices, keys and cylinders could be coded by the manufacturer or by the user, with the non-mechanical aspect of the key affording additional security against opening of a lock without the proper key. In these combinations of mechanical and non-mechanical security features on a key, the non-mechanical code or configuration or pattern simply added to what was required to open the lock, generally not carrying other readable data useful for other purposes.

U.S. Pat. No. 4,537,484 shows one example of a finger-print reader system for use in identity verification. Another such reader is manufactured by ThumbScan, Inc. of Oakbrook Terrace, Ill., for the purpose of computer terminal security. Such scanners have also been suggested for use in identification in access control systems involving granting of entry only to authorized persons. However, these systems have not cooperated with keys and locks which could be used in the same facility. Also, they have generally required processing of the attempted user's fingerprint in a central processor which would have to either compare the attempted user's fingerprint with hundreds or thousands of stored fingerprints in a database, or would receive a user identification number keypunched in by the person seeking access, and then look up a database-stored fingerprint corresponding to that code and make the comparison. Such a central look-up and comparison would involve a great deal of central computer memory and power, and the us of many-conductor bus cables between each access control point and the central processor, and would tend to require considerable time or a very high powered computer, to complete the access control decision. This equipment and installation of the cables can involve great cost, particularly when added to an existing building.

A different approach to access control decision making is taken by the present invention described below. In a preferred embodiment, a keyholder carries a key which not only has a mechanical configuration for accessing mechanical locks (or a card type key with non-mechanical lock access features), but also carries encoded data representing a personal identifying code or feature of the keyholder, as well as a simple identity number or code. The high security authentication comparison can be made directly at the access control point, by a small processor board located behind a reader panel.

SUMMARY OF THE INVENTION

In accordance with the access control system of the present invention, the system includes a series of mechanical keys or card type keys which can optionally be high security keys themselves. At least some of the keys carry encoded data which represent a personal feature of the intended keyholder assigned to that key. In preferred embodiments, the personal identifying or authenticating feature of the keyholder is a "biometric" feature, such as a fingerprint, a retina scan, a facial photograph or other feature unique to the intended keyholder. A retina scanner is disclosed in U.S. Pat. No. 4,685,140, for example.

The encoded data preferably is placed on the bottom edge of a mechanical key, and may be in a groove formed in that edge of the key. Alternatively, the data may be placed on one surface of the key's head. It may be read by swiping it through a reader slot. On a card type key the encoded data can be in a stripe on the card surface. Optical data storage such as used in audio and video discs may be used, or high-density optical storage such as disclosed in U.S. Pat. Nos. 4,145,758, 4,304,848 or 4,503,135.

The key also has a mechanical configuration (or lock accessing feature) matched to certain mechanical lock cylinders (or non-mechanical locks) to which the intended keyholder is to have access. Some of these may be lower security areas; for some high-security areas, keys may combine the mechanical or non-mechanical lock features with the user authentication access control feature, for high security.

It is a central feature of the present invention, and an important distinction from prior access control systems or high-security keys, that the key itself bears encoded data which is not merely picked up by the lock apparatus to establish a higher security in allowing rotation of a lock cylinder (or opening of a non-mechanical lock), but which carries digitized information relating to a personal authenticating feature of the intended user of the key, for reading and making a comparison before access is granted to the attempted user.

At some high-security access control point in the system, the keyholder places his key into a keyway or slot or against a reader, which reads the encoded, digitized information which relates specifically to the intended keyholder. This information as read is briefly stored in a memory associated with a small processor connected to the key reader. The keyholder may then be prompted to place a selected finger against a transparent window of a fingerprint reader. The fingerprint reader scans the fingerprint, and this scanned information is compared with the encoded information. It should be understood that other features unique to the intended keyholder can be used, as mentioned above such as a retina scan or a photograph.

If the actual fingerprint as read matches sufficiently closely to the fingerprint as encoded and stored on the key, a provisional decision is made by the small processor to grant access to the keyholder. In some applications a time/date access decision will also be required, with that decision made by a central processor, based on whether the particular keyholder is to be permitted access to that area at that particular time.

Optionally the keyholder can also be required to use his key to access a lock at the same location. The key can be used to rotate one cylinder, for example, while a second lock or bolt is released electrically, automatically, based on the decision of the system to grant access.

In a preferred embodiment the keyholder can be granted access by an electric release or electric strike based on the positive user authentication decision (with or without time/date decision from a central processor, as above), without using the mechanical key configuration (or other lock accessing features). In this case, the mechanical key configuration is used for other locks in the system, wherein lower security is required, with the encoded key enabling the keyholder to carry only one item for access to all permissible locks. With the authentication comparison made directly at the access control point, and no personal authentication (e.g., fingerprint) data required to be imported from any remote database at a central computer, the access control system of the invention can employ only a very small cable connecting each access control point to the central processor, e.g. two conductors, for time/date decision from the central processor and for reports to the central processor. Whenever access is attempted, the small local processor at the access control point can send a report which includes an identification of the keyholder, derived from encoded information on the key, and a "yes" or "no" decision as to whether access was permitted. The time of day and the access control point location can be added to the report by the central processor.

The system also enables access management for allowing different personnel entry at different times of day or different days of the week or calendar days, etc. The small on-site processor can be programmed to allow access to certain personnel by personnel code or number (at certain times), but preferably, for large numbers of personnel this is controlled by the central processor (again via a simple two-conductor cable). This can be adjusted, or access can be canceled for certain personnel (such as discharged employees) by instruction input at the central processor.

In another preferred embodiment of the invention, at each high-security access control point there is a keyway configured specifically for keys of keyholders who are to have access at this point. The keyway is at the key reader, instead of (or in addition to the keyway being in a lock cylinder. When a key of the correct type is inserted into this keyway, the reader scans the encoded data. Keys of the wrong mechanical configuration cannot be inserted, so that access will not be possible. The keyway can be of a high-security type, rather than one in common use.

In addition, a high-security key cut configuration can be used, such as of the type shown in U.S. Pat. Nos. 4,635,455 and 4,732,022 assigned to Medeco Security Locks, Inc. Such key cuts are made at an oblique angle with respect to the side faces of the key. For the purposes of this invention, at least one pin can be cooperative with the keyway, with the pin having an angled bottom end which becomes rotationally oriented when it engages against the angle cut key. If the pin does not engage properly against the key's angle cut, access can be automatically denied (even though the keyholder identification will preferably still be read from the key). This enables a report to be made to the central processor, regarding the attempted entry, and the fact that a certain keyholder's key was apparently defective or was attempted to be used improperly, at the wrong access control point.

An alarm can be activated under such condition of attempted improper key use, or a silent signal can be sent elsewhere in the system where preferably personnel will be alerted.

The same alarm or signal can be sent whenever access is denied in any of the various forms of the system of the invention, and for any reason, including the reason that the keyholder's fingerprint (or other personnel identifier) did not match the code on the key.

If desired for extra security, the keyway provided at the key code reader can comprise an actual lock cylinder which must be rotated before a positive access decision can be completed. Such a cylinder can include a full complement of pins in a high-security configuration if desired, so that a combination of user authentication and mechanical keying is relied upon for added security.

In one aspect, the invention comprises a card type or mechanical key, either of the pin type or of other high-security type currently in use, such as the dimple type or the tubular type, in combination with encoded data secured to the key--data which is readable by a scanner or reader and which does not directly help enable the keyholder to rotate the key in a lock. Instead, the encoded data is representative of some personal identifying, authenticating feature known by or held by or on the person of the intended keyholder. Such an authenticating feature preferably comprises a biometric feature such as a fingerprint scan, a retina scan, a voice pattern or a facial photograph; more broadly speaking, however, it can include other items such as a memorized number or code which is known only to the intended keyholder or keyholders and which must be input to a keyboard by the keyholder to be matched with what is read from the key. The prior art did not contemplate a mechanical key which itself bore such separate data which would enable authentication of the keyholder attempting access.

The encoded information on the key, if it represents fingerprint, retina scan, voice or other characteristic of the intended keyholder, also preferably includes a central keyholder number or code, for the purpose of reporting the identity of the intended keyholder in a transaction record whenever the key is attempted to be used for access.

In another aspect the invention comprises a card type key having normal lock accessing features, encoded data relating to the personal authenticating feature, and a photograph of the intended user, with other appropriate printed matter to allow the card to be used as an identifying card or badge. In a still further aspect, the card can at a minimum have encoded data carrying a biometric feature to be used in an access control system of the invention having corresponding biometric readers (e.g. fingerprint).

It is therefore among the objects of the present invention to improve over previous access control systems and high-security mechanical key systems by encoding keys with a user authentication code which can be read by scanners or readers at access control points, so as to prevent anyone but an authorized, intended keyholder from gaining access at such control points. An associated object is to provide an access control system wherein the key configuration or access control feature is effective to open locks at other points where keyholder authentication is not required, thus enabling personnel to carry only one key for access to both high-security points and lower-security points. These and other objects, advantages and features of the invention will be apparent from the following description of preferred embodiments, considered along with the accompanying drawings.

DESCRIPTION OF THE DRAWINGS

FIG. 1 is a diagrammatic drawing indicating components of an overall access control system in accordance with the principles of the present invention.

FIG. 2 is a view showing a mechanical key forming a part of the system of the invention in one embodiment, with encoded data formed on or secured to the key.

FIG. 3 is a frontal elevation view illustrating elements of the system of the invention in a preferred embodiment, at one access control point in the system.

FIG. 4 is a schematic system diagram partially in the form of a block diagram, indicating several access control points and security components, and indicating some information and control flow to and from a central processor, in accordance with one embodiment of the system of the invention.

FIG. 5 is a schematic block diagram indicating information which might be included in the encoded data on the mechanical key indicated in FIG. 2, and illustrating flow of information from the key and from a fingerprint scanner which may be included, and showing operation of the system to grant access or deny access and to make reports.

FIG. 6 is a schematic view, partially in perspective, showing elements of an optical key reader which may be included in the system of the invention.

FIG. 7 is a schematic diagram showing an embodiment of a system of the invention wherein access control points are formed into groups.

FIG. 8 is a flow diagram indicating operation of the system in accordance with one preferred embodiment of the invention.

FIG. 9 is a flow diagram illustrating the use of the access control system of the invention with an employee time management and payroll system.

FIG. 10 is a perspective view showing a credit card type key with non-mechanical lock access features and with encoded data representing a personal identifying feature of the keyholder.

FIG. 11 is a view similar to FIG. 10, showing a card with encoded data representing a personal biometric identifying feature of the keyholder and also a photograph of the keyholder, so that the card can be used as a security pass as well as an authenticating pass for high security access.

DESCRIPTION OF PREFERRED EMBODIMENTS

In the drawings, FIG. 1 shows schematically an access control system 10 in accordance with one embodiment of the present invention. Principal components of the system 10 include a series of high security access control points 12, including different security levels at 12a and 12b, and a series of lower security access control points 14. The system also includes a central processor unit 15 with associated memory, as well as a number of distributed mechanical keys 16 which are controlled in distribution and each registered to a specific intended keyholder or keyholders.

As schematically indicated in FIG. 1, the processor unit 15 is connected only to the high security access control points 12. The processor 15 may have a programmer unit 17 and an optional printer 18 connected to it.

As illustrated in FIG. 2, a mechanical key 16 as used in the system includes a mechanical configuration 19 for engagement with a mechanical lock, and it also includes encoded data related to high security access control located, for example, at a position 20 on or in the bottom edge of the key 16. The encoded data may alternatively be located on the head 22 of the key or on another edge, such as edges 24 of the key head 22. In these alternate locations the encoded data can be read by placing the key against a reader, or by insertion into a slot or by swiping through a slot.

Although FIG. 2 shows a conventional mechanical key configuration, for use with pin and shear plane type rotatable lock cylinders, the mechanical key 16 can also be of the higher security type with angle cuts as shown in U.S. Pat. No. 4,732,022 referenced above, or it can be a tube-shaped key of type often used on computers and burglar alarms, etc., or a dimple type key or any other type of mechanical key.

It should be understood that the present invention also applies to credit card type keys, hole punched type flat keys, and other flat plastic or metal card type keys, as well as conventional mechanical keys. The term "key" as used herein and in the claims is intended to encompass all such keys, except when accompanied by the term "mechanical."

An example of one kind of credit card type key 16a is shown in FIG. 10. All of FIGS. 1 and 3 through 9, and the accompanying description, should be understood as encompassing the use of any of a number of such card type keys, in many different configurations and with different types of lock accessing features. The card type key 16a in FIG. 10 may have hole-punched type lock access features 21, and a small strip of encoded data 23 carrying the personal identifying feature, such as a biometric feature.

Each key has two separate functions--a mechanical function of opening mechanical (or magnetic, hole-punch, etc.) locks in the system, and an electronic or data function involving the carrying of data as discussed above. The data borne by the key 16, in accordance with preferred embodiments of the invention, does not itself open a lock or help enable opening of a lock or enable access at an access control point. Rather, it includes information specific to the intended keyholder, for authenticating the keyholder when access is attempted by a keyholder using the key. At the minimum, the encoded data will include a personal code, e.g. a combination of numbers which are memorized by the intended keyholder and which only the intended keyholder (and perhaps supervisory personnel) is supposed to know. A comparison is made between the encoded information, or some of the encoded information from the key, and similar information input in another way (e.g. input manually by the keyholder on a number keyboard or input via fingerprint).

Thus, the system of invention differs from prior systems, even in the form of the minimum system just described, in that when access is attempted, the system does not retrieve a secret code from a central database or processor, for comparison with a code input by the attempted user. Instead, the secret code is carried on the key itself, and can be read by a small local processor at the access control point and there compared directly with a code input by the attempted user. The on-site comparison is one important feature of the invention.

However, in preferred embodiments of the invention the keyholder authenticating data carries not merely a secret number or code memorized by and known only to the intended keyholder, but instead or in addition carries data related to a personal identifying characteristic or biometric feature of the intended keyholder. This identifying biometric feature or characteristic advantageously can be the i